Have you received a text saying you owe money for an unpaid toll?
If so, you're not alone.
Cybercriminals are sending fraudulent text messages that appear to come from legitimate toll agencies, hoping recipients will click a malicious link and provide payment or personal information. These scams are becoming increasingly common and are designed to create a sense of urgency so people act before verifying the message.
Knowing how these scams work can help protect both your personal information and your finances.
What Is an Unpaid Toll Text Scam?
These scams, commonly referred to as smishing attacks (SMS phishing), use text messages to trick people into clicking fraudulent links.
The messages typically claim you owe a small toll balance and warn that additional fees or penalties will be added if payment isn't made immediately.
The link directs users to a fake website designed to collect:
- Credit card information
- Banking details
- Login credentials
- Personal information
Warning Signs to Watch For
While these messages may appear legitimate, there are several red flags:
- Unexpected text message
- Immediate payment request
- Threats of additional fees
- Suspicious or shortened website links
- Requests for sensitive information
- Poor grammar or unusual wording
If something doesn't look right, don't click.
What Should You Do?If you receive one of these messages:
- Do not click the link.
- Delete the message.
- Verify any unpaid toll directly through the toll authority's official website.
- Never submit payment information through a link in an unexpected text message.
- Report the message as spam if your mobile carrier provides that option.
What If You Already Clicked?
If you've already interacted with the message:
- Change any passwords you entered.
- Contact your bank or credit card provider if payment information was submitted.
- Monitor your accounts for suspicious activity.
- Consider running a security scan on your device.
- Continue monitoring your financial statements for unauthorized transactions.
The sooner you act, the better.
Why This Matters for Dealerships
Dealership employees receive a high volume of emails, text messages, and notifications from customers, lenders, OEMs, vendors, and software providers every day.
Because these communications are routine, phishing and smishing attacks can blend in with legitimate business activity.
Regular cybersecurity awareness training helps employees recognize suspicious messages before they become security incidents.
Stay Vigilant
Cyber threats continue to evolve, and scammers are constantly finding new ways to trick individuals and businesses.
Taking a few extra seconds to verify an unexpected message before clicking a link is one of the easiest ways to protect yourself.
If you're ever unsure, visit the organization's official website directly rather than using the link provided in the message.
Cybersecurity is about more than technology—it's about protecting your dealership, your employees, and your customers.
OWL Automotive Consulting partners with dealerships to strengthen their cybersecurity posture through services such as:
Cybersecurity Assessments
Managed IT Services
Vulnerability Scanning
Whether you're evaluating your current security posture or looking to proactively reduce risk, our team helps dealerships identify vulnerabilities and implement practical solutions that strengthen their overall cybersecurity strategy.
Want to learn more? Contact the OWL team to discuss how we can help protect your dealership from today's evolving cyber threats.